Cyber Resilience

CVE-2020-10095

High

Published: 19 February 2025

Published
19 February 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
EPSS Score 0.0009 26.1th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2020-10095 is a high-severity CSRF (CWE-352) vulnerability in Lexmark (inferred from references). Its CVSS base score is 8.1 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 26.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-23 (Session Authenticity) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2020-10095 is a Cross-Site Request Forgery (CSRF) vulnerability, mapped to CWE-352, affecting various Lexmark devices. Published on 2025-02-19, it enables an attacker to modify the configuration of the device. The vulnerability carries a CVSS v3.1 base score of 8.1 (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H), indicating high severity due to its potential for significant integrity and availability impacts.

A remote attacker requires no privileges and can exploit the issue over the network with low attack complexity, though it necessitates user interaction, such as clicking a malicious link. Successful exploitation allows the attacker to alter device configurations, compromising integrity (high impact) and potentially disrupting availability (high impact), while confidentiality remains unaffected.

Lexmark provides mitigation guidance through its security advisories, accessible at http://support.lexmark.com/alerts/ and https://www.lexmark.com/en_us/solutions/security//lexmark-security-advisories.html. Security practitioners should consult these resources for patching instructions and configuration hardening recommendations specific to affected devices.

EU & UK References

Vulnerability details

Various Lexmark devices have CSRF that allows an attacker to modify the configuration of the device.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1204.001 Malicious Link Execution
An adversary may rely upon a user clicking a malicious link in order to gain execution.
Why these techniques?

CSRF on public-facing device web interface directly enables remote config modification via malicious link (T1190 + T1204.001).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-25121Shared CWE-352
CVE-2025-24001Shared CWE-352
CVE-2025-25147Shared CWE-352
CVE-2026-34904Shared CWE-352
CVE-2024-26153Shared CWE-352
CVE-2025-28860Shared CWE-352
CVE-2026-45430Shared CWE-352
CVE-2025-23880Shared CWE-352
CVE-2025-59541Shared CWE-352
CVE-2026-23622Shared CWE-352

Affected Assets

Lexmark
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly protects against CSRF vulnerabilities like CVE-2020-10095 by ensuring the authenticity of communications sessions through mechanisms such as anti-CSRF tokens.

prevent

Remediates the specific CSRF flaw in Lexmark devices by identifying, prioritizing, and applying vendor patches or updates as provided in Lexmark security advisories.

prevent

Validates web inputs on Lexmark devices to detect and block unauthorized configuration modification requests lacking proper CSRF protections.

References